Solved

How Do You Tell if You're Being Hacked?!

Posted on 2004-09-19
9
2,298 Views
Last Modified: 2009-11-05
What I wants to know is how can you tell if someone has stolen any personal information from your computer, if they managed to get into your computer, or attempt to get into ur computer.  There has to be a way to tell all connections ever made to the computer.

The only way I knows is netstat (-a -b -n -v -etc)  I knows how to use all those commands.

But is there other ways too tell as well.  Cause lately my internet speed was up and down.  Sometimes when I sends a file or surf the web it's really fast then 5 minutes later the internet goes really slow.  I have broadband and sometimes I gets 5 kbps then another while after I gets 100 kbps.  Seems a little suspiscious and I want to take a closer look into the matter.

So if anyone knows of all the ways to tell all of the connections ever made to this computer.  From startup to shutdown, keep a log of all connections?   Any comments?
0
Comment
Question by:Xygus02
9 Comments
 

Author Comment

by:Xygus02
ID: 12095989
Note:   my svchost.exe  shows up in my netstat, but my firewall blocks all connections made to and from my computer.  Should I be weary of this connection?
0
 
LVL 12

Expert Comment

by:rossfingal
ID: 12096128
Depending on your system -
you'll have multiple copies of svchost.exe running from:
C:\WINDOWS\System32
or -
C:\WINNT\System32
These are legitimate processes.

Cheers!
RF
0
 
LVL 2

Accepted Solution

by:
smconsult earned 245 total points
ID: 12096255
What kind of firewall are you using?

Sean
0
Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

 

Author Comment

by:Xygus02
ID: 12096292
I'm using Norton Personal Firewall 2003
and the firewall Service Pack 2 comes with.
0
 
LVL 2

Expert Comment

by:smconsult
ID: 12096821
I'm not familiar with the logging capabilities of Norton.

If you were using a hardware firewall of some sort, you could use a Syslog program like Kiwi to log all of the incoming and outgoing connections.  For example, I'm using a Linksys BEFSR81 at the house, and an RV082 at work, and both are dumping their logs to Kiwi for forwarding to Dshield.org.

Are you on dial-up, or broadband?  (From the speeds you mentioned in your original question, it sounds like you're on dial-up.)

Sean
0
 
LVL 11

Expert Comment

by:Quetzal
ID: 12097352
Could be a bad network adaptor, wiring inside or outside.  Try opening a cmd window and do a continuous ping (e.g. ping -t google.com) to see if dropped packets or high latency during the slow periods.
0
 

Expert Comment

by:Xygus
ID: 12097681
No more replys to this question plz.  Xygus02 has been suspended cause experts-exchange suspected me of more then one account.  So I need to end this question immediately, thou I don't have the power to accept any of your answers.  But an admin might be able to do it for me.  If I had to choose anyone here to be rewarded, I would choose smconsult cause he told me about Dshield.org which I am going to use once I knows what my SMTP is.

thx
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

The next five years are sure to bring developments that are just astonishing, and we will continue to try to find the balance between connectivity and security. Here are five major technological developments from the last five years and some predict…
Smart phones, smart watches, Bluetooth-connected devices—the IoT is all around us. In this article, we take a look at the security implications of our highly connected world.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question